Test ID:	1.3.6.1.4.1.25623.1.0.105134
Category:	General
Title:	VMware ESXi updates address security vulnerabilities (VMSA-2014-0012) - Remote Version Check
Summary:	VMware ESXi updates address a Cross Site Scripting issue, a certificate validation; issue and security vulnerabilities in third-party libraries.
Description:	Summary: VMware ESXi updates address a Cross Site Scripting issue, a certificate validation issue and security vulnerabilities in third-party libraries. Vulnerability Insight: a. Update to ESXi libxml2 package libxml2 is updated to address multiple security issues. b. Update to ESXi Curl package Curl is updated to address multiple security issues. c. Update to ESXi Python package Python is updated to address multiple security issues. Affected Software/OS: VMware ESXi 5.1 without patch ESXi510-201412101-SG. Solution: Apply the missing patch(es). CVSS Score: 6.4 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-3797 Bugtraq: 20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities (Google Search) http://www.securityfocus.com/archive/1/534161/100/0/threaded http://seclists.org/fulldisclosure/2014/Dec/23 Common Vulnerability Exposure (CVE) ID: CVE-2014-8371 Common Vulnerability Exposure (CVE) ID: CVE-2013-2877 BugTraq ID: 61050 http://www.securityfocus.com/bid/61050 Debian Security Information: DSA-2724 (Google Search) http://www.debian.org/security/2013/dsa-2724 Debian Security Information: DSA-2779 (Google Search) http://www.debian.org/security/2013/dsa-2779 http://secunia.com/advisories/54172 http://secunia.com/advisories/55568 SuSE Security Announcement: SUSE-SU-2013:1627 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00002.html SuSE Security Announcement: openSUSE-SU-2013:1221 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-07/msg00063.html SuSE Security Announcement: openSUSE-SU-2013:1246 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-07/msg00077.html http://www.ubuntu.com/usn/USN-1904-1 http://www.ubuntu.com/usn/USN-1904-2 Common Vulnerability Exposure (CVE) ID: CVE-2014-0191 http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html http://lists.apple.com/archives/security-announce/2015/Aug/msg00002.html BugTraq ID: 67233 http://www.securityfocus.com/bid/67233 RedHat Security Advisories: RHSA-2015:0749 http://rhn.redhat.com/errata/RHSA-2015-0749.html SuSE Security Announcement: openSUSE-SU-2015:2372 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html XForce ISS Database: libxml2-cve20140191-dos(93092) https://exchange.xforce.ibmcloud.com/vulnerabilities/93092 Common Vulnerability Exposure (CVE) ID: CVE-2014-0015 http://archives.neohapsis.com/archives/bugtraq/2014-06/0172.html BugTraq ID: 65270 http://www.securityfocus.com/bid/65270 Debian Security Information: DSA-2849 (Google Search) http://www.debian.org/security/2014/dsa-2849 http://lists.fedoraproject.org/pipermail/package-announce/2014-February/128408.html http://lists.fedoraproject.org/pipermail/package-announce/2014-February/127627.html http://www.securitytracker.com/id/1029710 http://secunia.com/advisories/56728 http://secunia.com/advisories/56731 http://secunia.com/advisories/56734 http://secunia.com/advisories/56912 http://secunia.com/advisories/59458 http://secunia.com/advisories/59475 http://www.slackware.com/security/viewer.php?l=slackware-security&y=2014&m=slackware-security.502652 SuSE Security Announcement: openSUSE-SU-2014:0274 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-02/msg00066.html http://www.ubuntu.com/usn/USN-2097-1 Common Vulnerability Exposure (CVE) ID: CVE-2014-0138 Debian Security Information: DSA-2902 (Google Search) http://www.debian.org/security/2014/dsa-2902 http://secunia.com/advisories/57836 http://secunia.com/advisories/57966 http://secunia.com/advisories/57968 http://secunia.com/advisories/58615 SuSE Security Announcement: openSUSE-SU-2014:0530 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-04/msg00042.html http://www.ubuntu.com/usn/USN-2167-1 Common Vulnerability Exposure (CVE) ID: CVE-2013-1752 Common Vulnerability Exposure (CVE) ID: CVE-2013-4238 20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities DSA-2880 http://www.debian.org/security/2014/dsa-2880 RHSA-2013:1582 http://rhn.redhat.com/errata/RHSA-2013-1582.html USN-1982-1 http://www.ubuntu.com/usn/USN-1982-1 http://bugs.python.org/issue18709 http://www.vmware.com/security/advisories/VMSA-2014-0012.html https://bugzilla.redhat.com/show_bug.cgi?id=996381 openSUSE-SU-2013:1437 http://lists.opensuse.org/opensuse-updates/2013-09/msg00026.html openSUSE-SU-2013:1438 http://lists.opensuse.org/opensuse-updates/2013-09/msg00027.html openSUSE-SU-2013:1439 http://lists.opensuse.org/opensuse-updates/2013-09/msg00028.html openSUSE-SU-2013:1440 http://lists.opensuse.org/opensuse-updates/2013-09/msg00029.html openSUSE-SU-2013:1462 http://lists.opensuse.org/opensuse-updates/2013-09/msg00042.html openSUSE-SU-2013:1463 http://lists.opensuse.org/opensuse-updates/2013-09/msg00043.html openSUSE-SU-2020:0086 http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html
Copyright	Copyright (C) 2014 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.